Detections
Analytics
SuSE 11.3 Security Update : unzip (SAT Patch Number 10159)
high Nessus Plugin ID 80825
Language:
Synopsis
The remote SuSE 11 host is missing a security update.Description
This update fixes the following security issues :- heap overflow condition in the CRC32 verification.
(CVE-2014-8139)
- write error (_8349_) shows a problem in extract.c:test_compr_eb(). (CVE-2014-8140)
- read errors (_6430_, _3422_) show problems in process.c:getZip64Data(). (CVE-2014-8141)
Solution
Apply SAT patch number 10159.See Also
https://bugzilla.novell.com/show_bug.cgi?id=909214
http://support.novell.com/security/cve/CVE-2014-8139.html
Plugin Details
Severity: High
ID: 80825
File Name: suse_11_unzip-150113.nasl
Version: 1.2
Type: local
Agent: unix
Family: SuSE Local Security Checks
Published: 1/19/2015
Updated: 1/6/2021
Supported Sensors: Agentless Assessment, Continuous Assessment, Frictionless Assessment Agent, Frictionless Assessment AWS, Frictionless Assessment Azure, Nessus Agent, Nessus
Risk Information
VPR
Risk Factor: Medium
Score: 5.9
Vulnerability Information
CPE: p-cpe:/a:novell:suse_linux:11:unzip, cpe:/o:novell:suse_linux:11
Required KB Items: Host/local_checks_enabled, Host/cpu, Host/SuSE/release, Host/SuSE/rpm-list
Patch Publication Date: 1/13/2015